CVE Vulnerabilities

CVE-2013-0168

Published: Mar 12, 2013 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The MoveDisk command in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier does not properly check permissions on storage domains, which allows remote authenticated storage admins to cause a denial of service (free space consumption of other storage domains) via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Enterprise_virtualization_manager Redhat 2.1 2.1
Enterprise_virtualization_manager Redhat * 3.1
Enterprise_virtualization_manager Redhat 2.2.3 2.2.3
Enterprise_virtualization_manager Redhat 2.2 2.2
Enterprise_virtualization_manager Redhat 3.0 3.0

References